“As secretary of the Company,Christian Folini was effective leader of a group whose reputation for hardcore medieval authenticity was familiar to re-enactors around the world.”Tim Moore, I Believe in Yesterday

“Reserve your right to think,for even to think wrongly is betterthan not to think at all.”Hypatia of Alexandria

“The purpose of computing is insightnot numbers.”Richard W. Hamming

Christian Folini

Welcome to my website. I am a Swiss webserver engineer and security consultant working at netnea.com. I studied History and Computer Science and graduated with a PhD in Medieval History in 2004. I continue this interest with my commitment to the Company of St. George, a medieval reenactment group, which I run together with European friends.

I hold an LPIC-3 certification from the Linux Professional Institute and I have been specialised in Apache Security for more than ten years now. In 2006, I started to work with ModSecurity. I am an active contributor / committer of the OWASP ModSecurity Core Rules project. If you are looking to hire a contractor in this field, then please get in touch.

German Report about a Cybersecurity workshop at the Swiss Federal Office for Civil Protection (Bundesamt für Bevölkerungsschutz). The second national Swiss Cyberattack Workshop examining a DDoS attack on national infrastructures (2/Sep/2014).

German Tutorial with a step by step guide to integrate the OWASP ModSecurity Core Rules (13/Aug/2013).

German Tutorial explaining the integration of ModSecurity into the Apache webserver configuration (03/Jul/2013).

1 + 2 Backup Procedure is a simple backup method that works for people without technical background (11/Jun/2013).

German Report about a Cybersecurity workshop at the Swiss Federal Office for Civil Protection (Bundesamt für Bevölkerungsschutz). The first national Swiss Cyberattack Workshop examining a DDoS attack on national infrastructures (14/Oct/2012).

German Tutorial explaining how to extend the Apache access log in a useful way. A German step by step guide (5/Feb/2012).

Video about practical defense against application layer DDoS attacks: “Sniping Slowloris and Friends”. The video was taken at Swiss Hashdays Conference October 2011 (27/Jan/2012).

Video about defense concepts against application layer DDoS: “Hunting Slowloris and Friends”. The video was taken at Swiss Cyberstorm Conference May 2011 (23/Juni/2011).

German Tutorial about simple and effective ssl/tls configuration on apache. A German step by step guide (21/Jan/2012).